1.2 Nikto

Setting up a Nikto scan can also be done via the Seccubus GUI. In order to
this type of scan to work you need to have Nikto installed on the server
running Seccubus or be able to ssh into a server that can run Nikto.

If you have not yet created a workspace, go to the ‘Manage Workspaces’ tab and
click the ‘New workspace’ button.

Go to the ‘Manage scans’ tab and select the workspace you want to create the
scan in. Then click on the ‘New scan’ button.

Next we need to fill out a name for the scan, select the ‘Nessus’ scanner
provide the scanner parameters and the scan targets.

Next we need to fill out a name for the scan, select the ‘Nikto’ scanner and
provide the scanner parameters and the scan targets.

The scanner parameters determine which command line parameters are sent to the
scanners/<scannername>/scan script. The parameters of the scan script are also
shown in the create scan dialog.

The default options for the nikto scanner are:

-o <nikto options> --hosts @HOSTS

The string after -o will be passed as command line options
to Nikto. See http://cirt.net/nikto2-docs/options.html for a full
explanation of these options. Do not specify the –Format and –output options
as these options will be set by Seccubus.

Make sure to replace the <OpenVAS IP>, <OpenVAS user>, policy and portlist parameters with the desired values. Make sure you leave the --password='$PASSWORD' part in tact and that you provide the password in the separate password field.

1.5 Nmap

Setting up an Nmap scan can also be done via the Seccubus GUI. In order to
this type of scan to work you need to have Nmap installed on the server
running Seccubus are a server you can ssh to.

If you have not yet created a workspace, go to the ‘Manage Workspaces’ tab and
click the ‘New workspace’ button.

Go to the ‘Manage scans’ tab and select the workspace you want to create the
scan in. Then click on the ‘New scan’ button.

Next we need to fill out a name for the scan, select the ‘Nessus’ scanner
provide the scanner parameters and the scan targets.

Next we need to fill out a name for the scan, select the ‘Nmap’ scanner and
provide the scanner parameters and the scan targets.

The scanner parameters determine which command line parameters are sent to the
scanners/<scannername>/scan script. In the case of the Nmap scanner the the
default is:

-o "<nmap options>" [--sudo] --hosts @HOSTS

An explanation of the options is shown on the create scan screen.

The string specified by -o will be passed as command line options to
Nmap. See ‘nmap –help’ or http://nmap.org/book/man.html for a full
explanation of these options. Do not specify the –o (output) option as this option
will be set by Seccubus automatically.